Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9141eb3-8c95-492c-9677-b9dbd5ff8f2d.roa
File: b9141eb3-8c95-492c-9677-b9dbd5ff8f2d.roa (raw, json)
Hash identifier: d1sjmgnVF1RTtoDqnbl0dkyyMEi8mdrmWhdu0GcI/sQ=
Subject key identifier: A5:89:D0:BC:CC:78:9F:87:F5:DE:8D:60:44:48:6A:6A:E4:A8:D3:44
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 315020A6270FA9BF27A5009A5565FBE388EE7BA7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9141eb3-8c95-492c-9677-b9dbd5ff8f2d.roa
Signing time: Tue 14 Oct 2025 17:51:59 +0000
ROA not before: Tue 14 Oct 2025 17:51:59 +0000
ROA not after: Tue 18 Nov 2025 23:59:59 +0000
asID: 16509
IP address blocks: 71.152.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:50:20:a6:27:0f:a9:bf:27:a5:00:9a:55:65:fb:e3:88:ee:7b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 14 17:51:59 2025 GMT
Not After : Nov 18 23:59:59 2025 GMT
Subject: serialNumber=8ce147cead1b52a3fbdec5a5e1c40e2b8f385404b0fb7043ef3b58822b418a9a, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:78:58:99:42:0b:7d:9f:a4:1a:0c:47:1d:9a:
d6:f4:e5:1a:7b:2f:54:ba:e9:52:e4:7b:1f:17:fb:
6a:6f:6c:6f:61:a6:ed:ef:5a:30:f9:78:6a:ce:b3:
ef:1c:df:85:a8:9c:b8:26:12:f5:d1:f1:e7:94:3e:
fd:59:54:61:f9:85:44:56:db:fa:d1:75:63:a1:78:
10:17:54:cf:5a:1f:67:28:76:f6:76:87:df:ce:10:
34:33:0c:cf:dc:13:fb:90:41:73:43:bc:21:3c:3b:
68:4a:c0:fc:57:99:84:e1:84:c8:95:52:9c:96:06:
a3:61:2e:12:1a:2c:88:aa:f5:02:b2:19:d4:bb:f6:
0a:05:72:81:56:88:a8:2e:b2:1c:d9:7c:96:44:0a:
6c:64:64:3d:9a:04:bc:ed:f1:00:77:0c:5b:19:a1:
b1:ed:c4:0c:7b:60:cf:66:69:28:fe:44:11:92:d8:
8d:c9:1f:b9:c7:97:f1:28:dc:e7:52:f0:de:02:67:
08:01:e8:12:59:9a:cb:53:bc:09:5a:8b:a9:cd:37:
3b:15:ec:98:bc:6f:64:e3:67:14:72:cb:c3:b1:9b:
9c:18:c4:9c:2e:ef:d8:db:f4:78:78:1c:ec:d6:ac:
d7:da:aa:a4:b2:3f:85:9e:48:1c:7b:14:f5:da:a3:
2e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:89:D0:BC:CC:78:9F:87:F5:DE:8D:60:44:48:6A:6A:E4:A8:D3:44
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9141eb3-8c95-492c-9677-b9dbd5ff8f2d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
71.152.43.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b4:53:fc:4b:d6:55:ce:bc:ec:1d:46:38:f2:8e:da:1c:58:
e8:84:62:a8:5e:1f:1b:dc:d6:b6:0d:fa:d1:d0:1c:79:81:a9:
fa:6e:bc:d1:c3:a1:bf:04:50:a1:6d:35:ed:81:40:12:32:5b:
38:d6:7e:b1:a1:5d:5d:c1:09:ba:e4:9e:1e:17:bb:fa:2c:0b:
2e:37:63:23:2e:ce:ff:90:1e:99:35:47:50:ce:81:0f:17:ab:
8c:e9:e7:d9:5c:09:e6:b9:81:f6:41:1b:7b:04:57:5d:e7:17:
49:f3:fa:29:06:ec:13:97:b7:65:55:2d:48:79:b3:3a:31:3c:
09:d1:a1:31:b5:3e:8b:23:4c:ee:9a:62:74:b0:77:e6:32:35:
9a:bf:3b:4a:ba:27:19:b7:d6:8a:cc:40:d2:bb:ed:bc:96:17:
34:62:70:3d:b6:17:56:cd:a0:6f:b3:55:f5:93:e2:91:33:cc:
21:f8:5a:e5:79:af:06:5d:dc:cb:c7:70:71:15:8e:87:b5:f9:
7b:67:ff:50:2b:e7:8d:2d:bf:81:2e:5d:69:9f:63:9e:58:3f:
7b:c3:06:2b:48:56:38:35:a4:26:c3:28:66:97:fd:96:41:b8:
a6:da:19:62:0e:83:3f:c2:7f:da:83:77:1f:1b:69:46:3a:b2:
26:91:f5:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:47:31 2025 by rpki-client